I had to scratch around to find the way to export the SSL key for Deep security Manager. The trick is to find the password for the keystore file that is generated during the Deep Security installation. The rest is then pretty easy. Here is the way I did this :

Obtaining Keystore Password

On the DSM Server, navigate to the following directory :

  • c:\Program Files\Trend Micro\Deep Security Manager\installfiles\

In this folder find the following file :

  • genkey.bat

Open the file and look for the “-storepass” parameter. The syntax next to the -storepass is the keystore password. Note this password down.Keystorepass

Exporting the DSM Certificate

The Keystore file is located in the following directory :

  • c:\Program Files\Trend Micro\Deep Security Manager

The Keystore file name is :

  • .keystore

The keytool.exe file is located in the following folder :

  • c:\Program Files\Trend Micro\Deep Security Manager\jre\bin\

To export the current SSL certificate execute the following command from the keystore file location:

  • jre\bin\keytool.exe -export -alias tomcat -keystore .keystore -file dsm.crt

When prompted enter the keystore password.

Once competed you will have the Deep Security Manager Certificate.DSMCRT

 

 

Leave a Reply

Post Navigation